From owner-cvs-all  Mon May 25 21:06:31 1998
Return-Path: <owner-cvs-all@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id VAA13047
          for cvs-all-outgoing; Mon, 25 May 1998 21:06:31 -0700 (PDT)
          (envelope-from owner-cvs-all@FreeBSD.ORG)
Received: from alpo.whistle.com (alpo.whistle.com [207.76.204.38])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id VAA12918;
          Mon, 25 May 1998 21:05:33 -0700 (PDT)
          (envelope-from julian@whistle.com)
Received: (from daemon@localhost)
	by alpo.whistle.com (8.8.5/8.8.5) id VAA08688;
	Mon, 25 May 1998 21:01:50 -0700 (PDT)
Received: from current1.whistle.com(207.76.205.22)
 via SMTP by alpo.whistle.com, id smtpd008686; Tue May 26 04:01:48 1998
Date: Mon, 25 May 1998 21:01:45 -0700 (PDT)
From: Julian Elischer <julian@whistle.com>
To: Brian Somers <brian@Awfulhak.org>
cc: Julian Elischer <julian@FreeBSD.ORG>, cvs-committers@FreeBSD.ORG,
        cvs-all@FreeBSD.ORG, cvs-sys@FreeBSD.ORG
Subject: Re: cvs commit: src/sys/conf options src/sys/netinet ip_divert.c ip_fw.c ip_input.c ip_output.c ip_var.h 
In-Reply-To: <199805260146.CAA03268@awfulhak.org>
Message-ID: <Pine.BSF.3.95.980525210109.1508D-100000@current1.whistle.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk

I will but I want a few people to play with it first.

On Tue, 26 May 1998, Brian Somers wrote:

> How about mentioning the option in LINT ?
> 
> > julian      1998/05/25 03:37:49 PDT
> > 
> >   Modified files:
> >     sys/conf             options 
> >     sys/netinet          ip_divert.c ip_fw.c ip_input.c 
> >                          ip_output.c ip_var.h 
> >   Log:
> >   Add optional code to change the way that divert and ipfw work together.
> >   Prior to this change, Accidental recursion protection was done by
> >   the diverted daemon feeding back the divert port number it got
> >   the packet on, as the port number on a sendto(). IPFW knew not to
> >   redivert a packet to this port (again). Processing of the ruleset
> >   started at the beginning again, skipping that divert port.
> >   
> >   The new semantic (which is how we should have done it the first time)
> >   is that the port number in the sendto() is the rule number AFTER which
> >   processing should restart, and on a recvfrom(), the port number is the
> >   rule number which caused the diversion. This is much more flexible,
> >   and also more intuitive. If the user uses the same sockaddr received
> >   when resending, processing resumes at the rule number following that
> >   that caused the diversion. The user can however select to resume rule
> >   processing at any rule. (0 is restart at the beginning)
> >   
> >   To enable the new code use
> >   
> >   option	IPFW_DIVERT_RESTART
> >   
> >   This should become the default as soon as people have looked at it a bit
> >   
> >   Revision  Changes    Path
> >   1.75      +3 -1      src/sys/conf/options
> >   1.26      +43 -2     src/sys/netinet/ip_divert.c
> >   1.84      +36 -1     src/sys/netinet/ip_fw.c
> >   1.85      +25 -2     src/sys/netinet/ip_input.c
> >   1.67      +9 -1      src/sys/netinet/ip_output.c
> >   1.38      +10 -1     src/sys/netinet/ip_var.h
> 
> Cheers.
> 
> -- 
> Brian <brian@Awfulhak.org>, <brian@FreeBSD.org>, <brian@OpenBSD.org>
>       <http://www.Awfulhak.org>
> Don't _EVER_ lose your sense of humour....
> 
> 
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message